Re: [webrtc-pc] Isolated Media Streams requires modification on permission algorithms in GUM and Permissions specs from Harald Alvestrand via GitHub on 2017-11-06 (public-webrtc-logs@w3.org from November 2017)

From: Harald Alvestrand via GitHub <sysbot+gh@w3.org>
Date: Mon, 06 Nov 2017 20:25:41 +0000
To: public-webrtc-logs@w3.org
Message-ID: <issue_comment.created-342275356-1509999939-sysbot+gh@w3.org>

The attack scenario is this:
- JS asks for a stream, with the reassurance that this will only be sent to GoodGuy (isolated)
- JS covertly asks for a stream again; with the current language, he will be granted access to the camera without any isolation.
This is likely not what the user wants if the user cares about isolated streams.

-- 
GitHub Notification of comment by alvestrand
Please view or discuss this issue at https://github.com/w3c/webrtc-pc/issues/1646#issuecomment-342275356 using your GitHub account

Received on Monday, 6 November 2017 20:25:43 UTC